$ rpki-client -vvf rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/3C3A98A4E71C11EC9128DF0BC4F9AE02.roa File: 3C3A98A4E71C11EC9128DF0BC4F9AE02.roa (raw, json) Hash identifier: mDMM1HWL4v8E6URAbVQH/swVIK5fppcG8TmZuHg6PMs= Subject key identifier: 31:ED:F9:56:10:68:B3:4E:DB:D5:8D:4E:F6:E3:2E:1B:EE:D5:D3:94 Certificate issuer: /CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Certificate serial: 021C Authority key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/3C3A98A4E71C11EC9128DF0BC4F9AE02.roa Signing time: Fri 17 May 2024 04:38:28 +0000 ROA not before: Fri 17 May 2024 04:38:28 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149819 IP address blocks: 103.187.12.0/23 maxlen: 23 103.187.12.0/24 maxlen: 24 103.187.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Validity Not Before: May 17 04:38:28 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6646df44-d905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:6a:73:95:c3:1d:fe:c1:4d:b1:7a:81:b6: 2e:7b:2f:8c:f9:aa:9b:c2:12:47:39:7d:f4:e4:0e: c1:38:af:0c:bb:45:6a:3d:32:79:a1:71:fc:46:13: ca:77:4a:eb:ad:f8:80:65:70:d5:ae:ff:94:bd:59: d8:2e:82:88:a6:f1:7a:d0:16:ed:53:1c:21:36:5c: 0b:91:fc:a6:4c:a2:21:7d:22:a4:c5:fe:9e:7f:82: fe:28:00:99:5b:f9:34:cb:3f:86:2b:da:3d:a3:7c: 60:12:99:e4:03:f8:10:13:5b:4c:37:2d:12:b0:b3: ee:f1:e9:9b:e8:f7:4a:f9:62:dd:a1:7e:75:82:91: ba:bf:6b:9b:b1:92:91:67:89:b5:92:0f:f7:a1:b7: ca:d7:20:72:70:5e:8a:43:92:dc:db:96:1f:71:98: 06:b9:43:7c:54:96:3e:a6:80:3f:df:69:59:ab:b2: 38:73:7f:d2:13:4b:1d:58:65:99:93:4a:00:ee:a0: 28:f0:6c:78:79:3e:c7:e7:df:a8:a5:78:ba:a6:2e: d6:9d:8d:8e:df:f9:ae:a2:bb:bc:92:0e:85:fc:b6: 95:de:50:b1:03:2c:a8:3d:4d:a8:07:20:ac:cc:ab: 33:db:c5:d0:0b:e6:64:f9:20:36:e3:71:2d:58:e8: 41:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:ED:F9:56:10:68:B3:4E:DB:D5:8D:4E:F6:E3:2E:1B:EE:D5:D3:94 X509v3 Authority Key Identifier: keyid:6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/3C3A98A4E71C11EC9128DF0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.12.0/23 Signature Algorithm: sha256WithRSAEncryption c6:24:5d:ad:6e:21:47:5f:32:ce:ca:92:44:7f:64:e0:cf:17: dc:4c:65:36:07:d3:31:f1:64:7a:d6:b5:b8:b1:d5:48:ca:cc: a1:8d:1b:be:c4:da:d1:41:a1:bb:de:a8:32:31:8e:fc:22:0f: 4a:0b:c0:bd:dd:02:12:55:ee:e8:50:e7:4f:cf:d2:1a:be:cc: 07:e0:2d:db:cd:99:d2:45:4e:1c:f0:81:c2:bb:b9:a3:e0:de: e2:4c:20:7c:af:e0:43:6f:69:bf:16:6a:f3:71:e3:cc:9e:39: 35:1c:9e:60:76:32:52:24:c7:69:af:49:5c:d7:ba:c9:90:d0: 8c:ee:bb:fa:ba:2f:9b:43:d0:15:89:78:43:bc:ab:51:ed:b3: cd:59:96:39:cd:9e:35:c7:32:47:0d:05:a7:a6:09:5b:17:92: 2e:66:ed:59:de:7f:45:23:37:04:c8:91:d7:16:3d:46:42:2e: 1a:cb:ae:82:05:09:f7:6d:c7:f6:0d:74:39:6b:ce:36:33:d7: 86:f7:58:3c:40:07:7d:09:bd:41:16:65:41:a6:ee:46:61:96: 01:0e:57:0c:81:fd:7a:38:ba:e6:34:59:11:73:2f:a3:30:6e: 35:69:d3:5b:73:f2:15:48:0b:73:9f:17:55:41:6b:7f:d7:f5: 94:1b:68:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RDExMTAvBgNVBAUTKDZFMEEyOTAwNjEzMDMzOUI4MzZEMjhGNzAwMTgwMkY3 MUE1QTRFNDIwHhcNMjQwNTE3MDQzODI4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2ZGY0NC1kOTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsNqc5XDHf7BTbF6gbYuey+M+aqbwhJHOX305A7BOK8Mu0VqPTJ5oXH8RhPK d0rrrfiAZXDVrv+UvVnYLoKIpvF60BbtUxwhNlwLkfymTKIhfSKkxf6ef4L+KACZ W/k0yz+GK9o9o3xgEpnkA/gQE1tMNy0SsLPu8emb6PdK+WLdoX51gpG6v2ubsZKR Z4m1kg/3obfK1yBycF6KQ5Lc25YfcZgGuUN8VJY+poA/32lZq7I4c3/SE0sdWGWZ k0oA7qAo8Gx4eT7H59+opXi6pi7WnY2O3/muoru8kg6F/LaV3lCxAyyoPU2oByCs zKsz28XQC+Zk+SA243EtWOhBSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDHt+VYQ aLNO29WNTvbjLhvu1dOUMB8GA1UdIwQYMBaAFG4KKQBhMDObg20o9wAYAvcaWk5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZEMS9BQkRBNTE0MkU3 MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001dURiU2ozQUJnQzl4cGFU a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jnb3BBR0V3TTV1RGJTajNBQmdDOXhwYVRrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY2RDEvQUJEQTUxNDJFNzE1MTFFQ0I4MkNCMDZFQzRGOUFFMDIvM0MzQTk4QTRF NzFDMTFFQzkxMjhERjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuwwwDQYJKoZIhvcNAQELBQADggEBAMYkXa1uIUdfMs7K kkR/ZODPF9xMZTYH0zHxZHrWtbix1UjKzKGNG77E2tFBobveqDIxjvwiD0oLwL3d AhJV7uhQ50/P0hq+zAfgLdvNmdJFThzwgcK7uaPg3uJMIHyv4ENvab8WavNx48ye OTUcnmB2MlIkx2mvSVzXusmQ0Izuu/q6L5tD0BWJeEO8q1Hts81ZljnNnjXHMkcN BaemCVsXki5m7Vnef0UjNwTIkdcWPUZCLhrLroIFCfdtx/YNdDlrzjYz14b3WDxA B30JvUEWZUGm7kZhlgEOVwyB/Xo4uuY0WRFzL6MwbjVp01tz8hVIC3OfF1VBa3/X 9ZQbaEE= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:30 2024 by rpki-client on console-fra.rpki-client.org